CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-25038 – unbound: integer overflow in a size calculation in dnscrypt/dnscrypt.c
https://notcve.org/view.php?id=CVE-2019-25038
27 Apr 2021 — Unbound before 1.9.5 allows an integer overflow in a size calculation in dnscrypt/dnscrypt.c. ... An integer overflow in dnsc_load_local_data function may lead to a buffer overflow of the allocated buffer if the size can be controlled by an attacker. ... Issues addressed include denial of service and integer overflow vulnerabilities. • https://lists.debian.org/debian-lts-announce/2021/05/msg00007.html • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-25039 – unbound: integer overflow in a size calculation in respip/respip.c
https://notcve.org/view.php?id=CVE-2019-25039
27 Apr 2021 — Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/respip.c. ... An integer overflow in ub_packed_rrset_key function may lead to a buffer overflow of the allocated buffer if the size can be controlled by an attacker. ... Issues addressed include denial of service and integer overflow vulnerabilities. • https://lists.debian.org/debian-lts-announce/2021/05/msg00007.html • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-25040 – unbound: infinite loop via a compressed name in dname_pkt_copy
https://notcve.org/view.php?id=CVE-2019-25040
27 Apr 2021 — Issues addressed include denial of service and integer overflow vulnerabilities. • https://lists.debian.org/debian-lts-announce/2021/05/msg00007.html • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-25041 – unbound: assertion failure via a compressed name in dname_pkt_copy
https://notcve.org/view.php?id=CVE-2019-25041
27 Apr 2021 — Issues addressed include denial of service and integer overflow vulnerabilities. • https://lists.debian.org/debian-lts-announce/2021/05/msg00007.html • CWE-617: Reachable Assertion •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-25042 – unbound: out-of-bounds write via a compressed name in rdata_copy
https://notcve.org/view.php?id=CVE-2019-25042
27 Apr 2021 — Issues addressed include denial of service and integer overflow vulnerabilities. • https://lists.debian.org/debian-lts-announce/2021/05/msg00007.html • CWE-787: Out-of-bounds Write •
CVSS: 9.6EPSS: 1%CPEs: 5EXPL: 0CVE-2021-21223 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21223
26 Apr 2021 — Integer overflow in Mojo in Google Chrome prior to 90.0.4430.85 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_20.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 2CVE-2021-23382 – Regular Expression Denial of Service (ReDoS)
https://notcve.org/view.php?id=CVE-2021-23382
26 Apr 2021 — Issues addressed include code execution, cross site scripting, denial of service, integer overflow, and null pointer vulnerabilities. • https://github.com/postcss/postcss/commit/2b1d04c867995e55124e0a165b7c6622c1735956 • CWE-400: Uncontrolled Resource Consumption CWE-1333: Inefficient Regular Expression Complexity •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2021-29946 – Mozilla: Port blocking could be bypassed
https://notcve.org/view.php?id=CVE-2021-29946
26 Apr 2021 — Ports that were written as an integer overflow above the bounds of a 16-bit integer could have bypassed port blocking restrictions when used in the Alt-Svc header. • https://bugzilla.mozilla.org/show_bug.cgi?id=1698503 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-29473 – Out-of-bounds read in Exiv2::Jp2Image::doWriteMetadata
https://notcve.org/view.php?id=CVE-2021-29473
26 Apr 2021 — Issues addressed include buffer overflow, denial of service, information leakage, integer overflow, and out of bounds read vulnerabilities. • https://github.com/Exiv2/exiv2/security/advisories/GHSA-7569-phvm-vwc2 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-29470 – Out-of-bounds read in Exiv2::Jp2Image::encodeJp2Header
https://notcve.org/view.php?id=CVE-2021-29470
23 Apr 2021 — Issues addressed include buffer overflow, denial of service, information leakage, integer overflow, and out of bounds read vulnerabilities. • https://github.com/Exiv2/exiv2/pull/1581 • CWE-125: Out-of-bounds Read •